What are the responsibilities and job description for the Data Security Compliance Analyst position at University of California San Francisco?
Data Security Compliance Analyst involves monitoring, detecting, protecting and maintaining the security of data, systems and networks. Plans, configures, designs, develops, implements and maintains tools, systems and procedures to insure the integrity, reliability and security of data, systems and networks.
They apply skills as a seasoned, experienced IT security professional with a full understanding of data security concepts and compliance with internal practices and external regulations to handle compliance assessments that are highly complex and / or of broad scope. Implements approved data security compliance plans and works collaboratively with other departments and external partners where appropriate. Measures compliance and Identifies patterns and trends. Develops and implements improvements to department processes and may be lead or resource in a specialty discipline.
They apply skills as a seasoned, experienced IT security professional with a full understanding of data security concepts and compliance with internal practices and external regulations to handle compliance assessments that are highly complex and / or of broad scope. Implements approved data security compliance plans and works collaboratively with other departments and external partners where appropriate. Measures compliance and Identifies patterns and trends. Develops and implements improvements to department processes and may be lead or resource in a specialty discipline.
The final salary and offer components are subject to additional approvals based on UC policy.
Your placement within the salary range is dependent on a number of factors including your work experience and internal equity within this position classification at UCSF. For positions that are represented by a labor union, placement within the salary range will be guided by the rules in the collective bargaining agreement.
The salary range for this position is $108,200 - $165,600 (Annual Rate).
To learn more about the benefits of working at UCSF, including total compensation, please visit: https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html
Department Description
The Office of Healthcare Compliance and Privacy (OHCP) partners with the UCSF community and senior
leadership to coordinate and guide compliance efforts across the campus and health system. OHCP is responsible for oversight and compliance with all laws, regulations and policies related to Privacy and Healthcare Compliance, which includes prevention of fraud, waste and abuse in federal healthcare programs. The department provides compliance oversight in these areas for the entire UCSF enterprise, including the School of Medicine, all UCSF Campus Departments, UCSF Health, Langley Porter Psychiatric Institute, Benioff Children’s Hospital Oakland, UCSF Benioff Children’s Physicians, and UCSF Members at Affiliate Organizations.
The Data Security Office is a program within OHCP and the new team member will be responsible for
designing, implementing and managing a Data Security Compliance Program that serves the entire UCSF
enterprise.
leadership to coordinate and guide compliance efforts across the campus and health system. OHCP is responsible for oversight and compliance with all laws, regulations and policies related to Privacy and Healthcare Compliance, which includes prevention of fraud, waste and abuse in federal healthcare programs. The department provides compliance oversight in these areas for the entire UCSF enterprise, including the School of Medicine, all UCSF Campus Departments, UCSF Health, Langley Porter Psychiatric Institute, Benioff Children’s Hospital Oakland, UCSF Benioff Children’s Physicians, and UCSF Members at Affiliate Organizations.
The Data Security Office is a program within OHCP and the new team member will be responsible for
designing, implementing and managing a Data Security Compliance Program that serves the entire UCSF
enterprise.
Required Qualifications
- Bachelor's degree in related area and / or equivalent experience / training
- Advanced interpersonal skills sufficient to work effectively with both technical and non-technical personnel at various levels in the organization
- Typically 3-5 years of experience using IT security systems and tools
- Proven skill applying security controls to computer systems, networks, and environments (e.g,. cloud.)
- Proven skill at administering, documenting, and testing complex security controls and configurations to computer hardware, software, networks and environments (e.g. cloud.)
- In-depth knowledge of information technology security functional areas and as it relates to student data; health information; research subjects; finance; including credit card and loan transactions; management of IT resources and applications; and in-depth knowledge of technology infrastructure.(5 years)
- Ability to develop / maintain compliance status dashboards and reports; develop / maintain periodic data security metrics; perform trend analyses; and develop data visualization charts/graphs to measure enterprise data security compliance
- In-depth understanding of privacy and security regulations and best practices, including federal and state laws, policies and standards, as well as extensive knowledge about a wide range of privacy / security regulations relevant to higher education and / or medical center and patient information
- Demonstrated skill at analyzing and preventing security incidents of high complexity
- Typically 2-3 years of experience in data security assessments, audits or related formal risk management functions( e.g. maintaining or managing Governance/Risk and Compliance tools and associated reports)
- Knowledge of department processes and procedures
- Advanced organizational and project management skills. Demonstrates flexibility and handles multiple and competing responsibilities; sets goals, prioritizes tasks, and identifies resources.
- Broad knowledge of other areas of IT
Preferred Qualifications
- SANS GIAC Systems and Network Auditor (GSNA) or Critical Controls Certification (GCCC)
- Broad knowledge of other areas of IT
- Knowledge of department processes and procedures
About UCSF
The University of California, San Francisco (UCSF) is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate-level education in the life sciences and health professions, and excellence in patient care. It is the only campus in the 10-campus UC system dedicated exclusively to the health sciences. We bring together the world’s leading experts in nearly every area of health. We are home to five Nobel laureates who have advanced the understanding of cancer, neurodegenerative diseases, aging and stem cells.
Pride Values
UCSF is a diverse community made of people with many skills and talents. We seek candidates whose work experience or community service has prepared them to contribute to our commitment to professionalism, respect, integrity, diversity and excellence – also known as our PRIDE values.
In addition to our PRIDE values, UCSF is committed to equity – both in how we deliver care as well as our workforce. We are committed to building a broadly diverse community, nurturing a culture that is welcoming and supportive, and engaging diverse ideas for the provision of culturally competent education, discovery, and patient care. Additional information about UCSF is available at diversity.ucsf.edu
Join us to find a rewarding career contributing to improving healthcare worldwide.
In addition to our PRIDE values, UCSF is committed to equity – both in how we deliver care as well as our workforce. We are committed to building a broadly diverse community, nurturing a culture that is welcoming and supportive, and engaging diverse ideas for the provision of culturally competent education, discovery, and patient care. Additional information about UCSF is available at diversity.ucsf.edu
Join us to find a rewarding career contributing to improving healthcare worldwide.
Equal Employment Opportunity
The University of California San Francisco is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.
Organization
Campus
Job Code and Payroll Title
007338 IT SCRTY ANL 3
Job Category
Clinical Systems / IT Professionals, Compliance and Privacy
Bargaining Unit
99 - Policy-Covered (No Bargaining Unit)
Employee Class
Career
Percentage
100%
Location
San Francisco, CA
Work Style
Fully Remote
Shift
Days
Shift Length
8 Hours
Additional Shift Details
Monday-Friday 8am-5pm
Salary : $108,200 - $165,600
